ExternalAttacker MCP Server
@MorDavid
About ExternalAttacker MCP Server
A modular external attack surface mapping tool integrating tools for automated reconnaissance and bug bounty workflows.
Basic information
Config
Add this server to your MCP-compatible client using the configuration below.
{
"mcpServers": {
"ExternalAttacker-MCP": {
"command": "python",
"args": [
"<Your_Path>\\ExternalAttacker-MCP.py"
]
}
}
}Tools
No tools detected
We auto-extract tools from the README. The maintainer can list them under a ## Tools heading to populate this section.
Overview
What is ExternalAttacker MCP Server?
ExternalAttacker MCP Server is a model context protocol integration that brings automated external attack surface management and reconnaissance capabilities through a natural language interface. It allows users to run scans, analyze infrastructure, and discover vulnerabilities by issuing plain-English queries to an AI assistant.
How to use ExternalAttacker MCP Server?
Clone the repository, install the Python dependencies, install the required Go tools (subfinder, naabu, httpx, cdncheck, tlsx, ffuf, gobuster, dnsx), then run ExternalAttacker-App.py and access the local web interface (default port 6991). Finally, configure the MCP server in your MCP client by adding the command python <path>/ExternalAttacker-MCP.py to the mcpServers section.
Key features of ExternalAttacker MCP Server
- Natural language interface for scanning commands
- Subdomain discovery (using subfinder)
- Port scanning (using naabu)
- HTTP service analysis (using httpx)
- CDN detection (using cdncheck)
- TLS/SSL analysis (using tlsx)
- Directory fuzzing (using ffuf, gobuster)
- DNS enumeration (using dnsx)
Use cases of ExternalAttacker MCP Server
- Scan a domain for subdomains and map its attack surface
- Check open ports on a target IP or hostname
- Analyze HTTP response headers and status codes for a site
- Verify whether a domain is behind a CDN
- Fuzz common endpoints and directories on a web application
FAQ from ExternalAttacker MCP Server
What are the prerequisites?
Python 3.8 or higher, Go installed, and a MCP client are required.
How do I install the required Go tools?
Run the provided go install commands for each tool (subfinder, naabu, httpx, cdncheck, tlsx, ffuf, gobuster, dnsx).
What kind of queries can I make?
You can ask questions like “Scan example.com for subdomains”, “Check open ports on 192.168.1.1”, or “Analyze HTTP services on test.com”.
How do I configure the MCP server in my client?
Add an entry to your MCP client’s mcpServers configuration with the command python and args containing the full path to ExternalAttacker-MCP.py.
Is this tool safe to use?
It is a security tool; you should only use it on systems you have explicit permission to test.
More Other MCP servers
MCP Toolbox for Databases
googleapisMCP Toolbox for Databases is an open source MCP server for databases.
Inbox Zero AI MCP
elie222The world's best AI personal assistant for email. Open source app to help you reach inbox zero fast.
Reactive Resume
amruthpillaiA one-of-a-kind resume builder that keeps your privacy in mind. Completely secure, customizable, portable, open-source and free forever. Try it out today!
Blender
ahujasidOpen-source MCP to use Blender with any LLM
Core Philosophy: Connect, Unify, Respond
mindsdbDelegate anything. It comes back done.
Comments